CVE-2002-1350
tcpdump - denial of service
EPSS 2.5%
Description
The BGP decoding routines in tcpdump 3.6.x before 3.7 do not properly copy data, which allows remote attackers to cause a denial of service (application crash).
How to fix CVE-2002-1350
To remediate CVE-2002-1350, upgrade the affected package to a fixed version below.
- Debian/tcpdump—upgrade to 3.7.2-1 or later
- Debian/tcpdump—upgrade to 3.6.2-2.2 or later
Is CVE-2002-1350 being exploited?
Low — EPSS is 2.5%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 3.7.2-1
- from 0, < 3.6.2-2.2